Comment by glitchc
2 years ago
This is naive in the extreme. There are many scenarios where passwords are needed, for bootstrapping, a disgruntled admin leaving, etc.
There is a role for a common secret in a secure ecosystem (password, passkey)
2 years ago
This is naive in the extreme. There are many scenarios where passwords are needed, for bootstrapping, a disgruntled admin leaving, etc.
There is a role for a common secret in a secure ecosystem (password, passkey)
That common secret is usually an ssh key which is held somewhere secure hopefully with auditable access.
For bootstrapping you can bake a bootstrapping key into your installer which is removed after the system is configured.